If this is your first visit, be sure to
check out the FAQ by clicking the
link above. You may have to register
before you can post: click the register link above to proceed. To start viewing messages,
select the forum that you want to visit from the selection below.

blackhole dns question

I've been running blackhole dns for a while now. Ever since tigershark brought it to my attention.
It's been working fine and I update it on a daily basis via a batch file. I also append other domains to it as needed.

If I were to ping google using either google.com or www.google.com it works.

I know that the google request is being forwared to my ISP's name servers and that the 000info.com lookup is done locally...

Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

From what I'm seeing and reading (and I may be misunderstanding you) 000info is resolving to localhost 127.0.0.1. This is simply because of the order that your OS does name resolution. I believe the order is name cache (H,P, B, local name etc), host file, then DNS.

Phishy, hit me up on IM.

--Th13

Our scars have the power to remind us that our past was real. -- Hannibal Lecter.
Talent is God given. Be humble. Fame is man-given. Be grateful. Conceit is self-given. Be careful. -- John Wooden

When I ping google.com without the www or any wildcard, I get a reply.

When I ping 000info.com (or any other domain in that list) without the www or any subdomain, I don't get a reply. I have not tried to append all those domains to my hosts file and tie them to localhost. That *should* do it, but I was curious as to why I would need to do that and DNS wouldn't resolve the address without the www or subdomain.

If I wanted it to resolve the domain without the www or *, how would I do that?

I'm in an Active Directory environment. As such, you can't run blackhole dns on an AD DNS server. (They don't allow you to load from a file. Just AD/registry.)

I have these stand alone DNS servers being forwarded to my internal AD DNS servers.

I have not had problems with the batch update. I archive the previous files boot files. So, if there should be a problem, I can easily restore to the working. Also, if there is no new file, the batch fails and it keeps the same boot file in place.

(err, scratch that. I did have one problem where there was a dupplicate domain in the block file which prevented the dns server from restarting. It only affected one server as I have them on different schedules and once I saw the problem, I was able to fix it before the others had problems. I was thinking of doing a script to check the file for duplicates before applying, but I haven't really had any problem with it since.)

Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

exactly. in the blackhole dns config guide, they didn't even show an example of just trying to resolve the domin without the www or subdomain.

I'm pretty sure I have the config setup properly...

I also thought it was pretty weird...

I *think* that when I originally set this up, it worked fine. But I'm not 100% on that.

Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

The reason it isn't resolving is because the host is down, not because
of your black hole dns. The request is being forwarded to your ISP,
and then failing to resolve. Probably something wrong with the syntax
of your zone file.

Ok, I'll doublecheck the syntax of the zone file when I get in this AM.

As far as I can tell, the zone file matches the example they have 100% except for the domain info and nameserver info has been changed to match my environment and forwarders to my AD DNS servers have been added.

I'll delete the zone and start new and then add the wildcard and see if that helps at all.

BTW: Why would it matter if the actual host is down? It *should* be resolving to localhost in which case the "host" would never be down unless there is a problem with the NIC on the machine making the DNS inquiry.

Quitmzilla is a firefox extension that gives you stats on how long you have quit smoking, how much money you\'ve saved, how much you haven\'t smoked and recent milestones. Very helpful for people who quit smoking and used to smoke at their computers... Helps out with the urges.

It shouldn't. It should resolve to 127.0.0.1 no matter what, but if the
host was up, it would not be blocked because your system is forwarding
the request to your forwarder rather than handling it locally.